|Job Ref:||204539071||Employer:||cv-library.co.uk||Job Type:||Contract||Country:||United Kingdom||County/State:||Hampshire||City:||Portsmouth||Address:||Salary:||£40 - £50/hour negotiable||Post Date:||07/10/2016 04:21|
Start date: ASAP
Duration: 6months plus
Hours: 37 hrs per week
Pay rate: negotiable
Security clearance required: SC
Aerospace and defence company are seeking to fill specific security roles for a Data Centre project in support of a Satellite System. The roles on offer are both exciting and challenging and are for an initial period of six months. In either case, the candidate(s) should be able to demonstrate the ability to work in a dynamic environment, on a large project with complex stakeholder sets with initiative, diplomacy, persistence and minimal oversight.
The Security Engineer and Pen Tester role requires the responsible person to have a solid base of practical experience in security, including use of the common Penetration Tool (e.g NMAP, Nessus, Wireshark) and also experience in system engineering on large projects. The Security Engineer and Pen Tester role encompasses a number of differing tasks - to include:
Management of the issues arising from External penetration testing, auditing and ITHC activities.
Interfacing with engineering and deployment teams to identify Penetration Test mitigations and overseeing their deployment to the operational environment.
Security testing of the production and validation environments to assure deployment of mitigations.
Liaison with external Testing companies to procure validation tests.
Definition of lockdowns, specification of validation for lockdown.
Security guidance to the other engineering groups and subcontractors
Technical Assessment of vulnerabilities and their impacts (application, system, operational) then consultation on resolution.
Support to verification, including definition and execution of test procedures
Activities as directed by the Security Manager.
Trustworthy and use a trustworthy manner in all interactions with customers, colleagues and suppliers.
Committed to personally following good security practice to provide example to others in the team.
Driven to improve security but not dogmatic.
Persistent and resilient.
Security Engineer/Architect Role:
Technology: Linux Bash, Nessus, Wireshark, NMAP.
At least 3 years in a dedicated security role.
At least 3 years on a large government, or similar scale project.
At least one of the following Security Credentials: CEH, CISSP, CSSLP, CCP (IA Architect), GICSP, CCNA Security, GSE, CISSP, GCIA, GREM, GCIH, GNET or equivalent.
Experience in working within a SOC (security Operations Centre).
Experience in large engineering teams working on the implementation of new large systems
An understanding of Network attack Methodologies or understanding and experience of both the Windows and UNIX based Operating System and application environments
Deployment of SIEM Tools an SOC development.
Experience of large system engineering, including requirements management and baseline management using CASE tools (e.g. IBM DOORS).
Hold Qualification in either CLAS or CCP at the SIRA (Security and Information Risk Advisor) at Practitioner level or Commercial equivalent.
Knowledge of OS lockdown (Windows/Linux) and Network security.
Some international travel may be required for these roles business trips (e.g. Fucino Italy and Oberpfaffenhofen, Germany) for which expenses will be paid in line with the Company Expense Policy